Millions of AI agents imperiled by critical vulnerability in open source package

BadHost in Starlette may let attackers bypass path-based auth in AI infrastructure built on FastAPI and Starlette.

Ars Technica reports that Starlette, a Python package with about 325 million weekly downloads, has a critical vulnerability called BadHost. The flaw can let crafted Host headers confuse request.url.path, potentially bypassing middleware-based path authorization. AI infrastructure using FastAPI or Starlette, including vLLM, LiteLLM, MCP servers, LLM proxies, and agent frameworks, should upgrade Starlette and audit custom middleware.

摘要由 AI 整理,以原文為準。